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DETAILED ACTION 
Claim Rejections - 35 USC §112 

1 . The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

2. Claims 12 and 24 are rejected under 35 U.S.C. 1 12, second paragraph, as being 
indefinite for failing to particularly point out and distinctly claim the subject matter which 
applicant regards as the invention. 

The term "relatively" in claims 12 and 24 is a relative term which renders the 
claim indefinite. The term "relatively" is not defined by the claim, the specification does 
not provide a standard for ascertaining the requisite degree, and one of ordinary skill in 
the art would not be reasonably apprised of the scope of the invention. Mobile clients 
use relatively short authentication credentials, "relatively short" does not clearly specify 
the size of the authentication credentials. 
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Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claim 1-7, 12, and 24-30 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Blakley, III et al. (US Patent Number: 6,067,623, hereinafter 
"Blakley"), and further in view of Davis et al. (US Patent Number: 6,367,009, 
hereinafter "Davis"). 

Regarding claim 1, Blakley teaches 

defining an authentication filter in a gateway that is remotely interposed 
between a remote WAP server client and a content server, wherein the 
authentication filter maps authentication credentials received from the 
remote WAP server client according to pre-established criteria, wherein 
the WAP server provides the authentication credentials to the gateway in 
response to a wireless client requesting access to a domain available to 
the content server (column 4, lines 50-67, column 5, lines 1-30); 
receiving the authentication credentials at the gateway from the remote 
WAP server client, wherein the authentication credentials include both a 
domain and a user name corresponding to access permissions for 
accessing the resources at the content server through the domain 
(column 4, lines 50-67, column 5, lines 1-30); 
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mapping the received authentication credentials based on the pre- 
established criteria, and by changing at least one of the domain and user 
name received from the remote client to different domain or user name, 
respectively (column 4, lines 50-67, column 5, lines 1-30); and 
sending the mapped authentication credentials to the network, and such 
that the wireless client's access to the content source is based on the 
mapped authentication credentials comprising the at least one of a 
changed user name and a changed domain (column 4, lines 50-67, 
column 5, lines 1-30). 
Blakley does not expressly teach the authentication filter including a domain 
identifier and a username modifier, and changing the domain and the user name that is 
received from the remote client by at least one of adding a suffix or prefix to the user 
name, adding new characters to a middle portion of the user name, replacing a portion 
of the user name, or deleting some characters from the user name, or using it in a 
wireless environment as claimed. However, Blakley teaches mapping the credentials 
received to a new set of credentials that is used for authenticating the user to the 
requested resource (column 4, lines 50-67, column 5, lines 1-30), and that the client 
workstation can be any of a variety of workstations based on Intel or other processors 
(column 5, lines 30-67). Furthermore, Davis teaches a system providing authentication 
services to a plurality of wireless clients through a gateway (column 7, lines 29-67, 
column 8, lines 1-45). Therefore, it would have been obvious to one having ordinary skill 
in the art to modify the data received according to some predefined method prior to 
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sending it to the requested resource and to use the system of Blakley within the 
wireless environment of Davis. One of ordinary skill in the art would have been 
motivated to do so to provide access to a network for wireless clients. 
Regarding claim 12, Blakley teaches 

altering at a gateway, authentication credentials that include a user name 
and a domain that are received from a WAP server communicating with 
one or more remote mobile clients and the gateway to produce mapped 
authentication credentials that match mobile authentication credentials 
maintained on the network by at least one of changing the domain name 
and the user name, wherein the WAP server provides the authentication 
credentials to the gateway in response to a wireless client requesting 
access to a domain available to the content server (column 4, lines 50- 
67, column 5, lines 1-30) 

identifying a mobile client to the network using the altered authentication 
credentials (column 4, lines 50-67, column 5, lines 1-30); and 
accessing content provided by the network in accordance with the 
access privileges allowed by the mobile authentication credentials 
(column 4, lines 50-67, column 5, lines 1-30). 
Blakley does not expressly teach changing the user name that is received from 
the remote client by at least one of adding a suffix or prefix to the user name, adding 
new characters to a middle portion of the user name, replacing a portion of the user 
name, or deleting some characters from the user name, or using it in a wireless 
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environment as claimed. However, Blakley teaches mapping the credentials received to 
a new set of credentials that is used for authenticating the user to the requested 
resource (column 4, lines 50-67, column 5, lines 1-30), and that the client workstation 
can be any of a variety of workstations based on Intel or other processors (column 5, 
lines 30-67). Furthermore, Davis teaches a system providing authentication services to 
a plurality of wireless clients through a gateway (column 7, lines 29-67, column 8, lines 
1-45). Therefore, it would have been obvious to one having ordinary skill in the art to 
modify the data received according to some predefined method prior to sending it to the 
requested resource and to use the system of Blakley within the wireless environment of 
Davis. One of ordinary skill in the art would have been motivated to do so to provide 
access to a network for wireless clients. 

Regarding claim 24, Blakley teaches a computer readable medium for carrying 
machine-executable instructions for implementing the method (column 5, lines 30-67); 
and wherein said method is comprised of machine-executable instructions for a mobile 
gateway performing the acts of: 

defining an authentication filter in a gateway that is remotely interposed 
between a remote WAP server client and a content server, wherein the 
authentication filter maps authentication credentials received from the 
remote WAP server client according to pre-established criteria, wherein 
the WAP server provides the authentication credentials to the gateway in 
response to a wireless client requesting access to a domain available to 
the content server (column 4, lines 50-67, column 5, lines 1-30); 
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receiving the authentication credentials at the gateway from the remote 
WAP server client, wherein the authentication credentials include both a 
domain and a user name corresponding to access permissions for 
accessing the resources at the content server through the domain 
(column 4, lines 50-67, column 5, lines 1-30); 
mapping the received authentication credentials based on the pre- 
established criteria, and by changing at least one of the domain and user 
name received from the remote client to different domain or user name, 
respectively (column 4, lines 50-67, column 5, lines 1-30); and 
such that the wireless client's access to the content source is based on 
the mapped authentication credentials comprising the at least one of a 
changed user name and a changed domain (column 4, lines 50-67, 
column 5, lines 1-30). 
Blakley does not expressly teach the authentication filter including a domain 
identifier and a username modifier, and changing the domain and the user name that is 
received from the remote client by at least one of adding a suffix or prefix to the user 
name, adding new characters to a middle portion of the user name, replacing a portion 
of the user name, or deleting some characters from the user name, or using it in a 
wireless environment as claimed. However, Blakley teaches mapping the credentials 
received to a new set of credentials that is used for authenticating the user to the 
requested resource (column 4, lines 50-67, column 5, lines 1-30), and that the client 
workstation can be any of a variety of workstations based on Intel or other processors 
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(column 5, lines 30-67). Furthermore, Davis teaches a system providing authentication 
services to a plurality of wireless clients through a gateway (column 7, lines 29-67, 
column 8, lines 1-45). Therefore, it would have been obvious to one having ordinary skill 
in the art to modify the data received according to some predefined method prior to 
sending it to the requested resource and to use the system of Blakley within the 
wireless environment of Davis. One of ordinary skill in the art would have been 
motivated to do so to provide access to a network for wireless clients. 

Regarding claims 2 and 25, the combination of Blakley and Davis teaches the 
limitations as set forth under claims 1 and 24 respectively above. Furthermore, Blakley 
teaches accessing resources via the internet and mapping authentication credentials 
received to credentials used to access resources internal to a different network (column 
4, lines 18-41, column 5, lines 49-67). Therefore, it would have been obvious to one 
having ordinary skill in the art at the time the invention was made to use the 
combination of Blakley and Davis on an environment with different domains. One of 
ordinary skill in the art would have been motivated to do so to provide controlled access 
to network resources to clients (Blakley, column 5, lines 17-48). 

Regarding claims 3 and 26, the combination of Blakley and Davis teaches the 
limitations as set forth under claims 2 and 25 respectively above. Furthermore, Blakley 
teaches accessing resources via the internet and mapping authentication credentials 
received to credentials used to access resources internal to a different network (column 
4 ( lines 18-41, column 5, lines 49-67). Blakley's teachings are mute regarding 
specifically replacing the domain name, but teach specifically mapping the 
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authentication credentials, therefore, it would have been obvious to one of ordinary skill 
in the art to map/replace/modify received authentication credentials to some other 
credentials to authenticate a client to a network resource. Therefore, it would have been 
obvious to one having ordinary skill in the art at the time the invention was made to use 
the combination of Blakley and Davis on an environment with different domains. One of 
ordinary skill in the art would have been motivated to do so to provide controlled access 
to network resources to clients (Blakley, column 5, lines 17-48). 

Regarding claims 4, 17, and 27, the combination of Blakley and Davis teaches 
the limitations as set forth under claims 1, 12, and 24 respectively above. Furthermore, 
Blakley teaches wherein the authentication credentials are maintained in a credential 
database that is administered separately from domain authentication credentials and 
recognized by the content server only in authenticating client access through the 
gateway (column 4, lines 50-67, column 5, lines 1-30). 

Regarding claims 5 and 28, the combination of Blakley and Davis teaches the 
limitations as set forth under claims 1 and 24 respectively above. Furthermore, Blakley 
teaches accessing resources via the internet and mapping authentication credentials 
received to credentials used to access resources internal to a network (column 4, lines 
18-41 , column 5, lines 49-67). Therefore, it would have been obvious to one having 
ordinary skill in the art at the time the invention was made to use the combination of 
Blakley and Davis on a LAN (Local Area Network) environment where a common 
domain exists. One of ordinary skill in the art would have been motivated to do so to 
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provide controlled access to network resources to clients (Blakley, column 5, lines 17- 
48). 

Regarding claims 6-7 and 29-30, the combination of Blakley and Davis teaches 
the limitations as set forth under claims 5 and 28 respectively above. Furthermore, 
Blakley teaches accessing resources via the internet and mapping authentication 
credentials received to credentials used to access resources internal to a network 
(column 4, lines 18-41). Blakley does not expressly disclose wherein the mapping of 
credentials includes adding a suffix to the username or adding a prefix to the username. 

Regarding claims 8, 19, and 34, the combination of Blakley and Davis teaches 
the limitations as set forth under claims 1,12, and 24 respectively above. Furthermore, 
Blakley teaches accepting authentication credentials only from the one or more 
identified wireless application protocol servers (Blakley, column 5, lines 17-67). 

Regarding claims 9, 20, and 31, the combination of Blakley and Davis teaches 
the limitations as set forth under claims 1,12, and 24 respectively above. Furthermore, 
Blakley teaches wherein the gateway authentication credentials correspond to other 
authentication credentials that allow access to a content server, and wherein a trust 
relationship exists between the gateway authentication credentials and other 
authentication credentials with respect to one or more access privileges, the method 
further comprising the acts of: receiving a request for content available at the content 
server; sending the request to the network; receiving the requested content from the 
network; and sending the received content to the client (column 4, lines 50-67, column 
5, lines 1-30). 
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Regarding claims 10, 21, and 32, the combination of Blakley and Davis teaches 
the limitations as set forth under claims 9, 20, and 31 respectively above. Furthermore, 
Blakley teaches access to enterprise resources such as databases, etc (column 3, lines 
50-67, column 5, lines 1-50). Therefore, it would have been obvious to one having 
ordinary skill in the art at the time the invention was made to use Blakley's system to 
access email content. One of ordinary skill in the art would have been motivated to do 
so because the Blakley teaches accessing enterprise resources, email content was/is 
considered an enterprise resource. 

Regarding claim 13, the combination of Blakley and Davis teaches the 
limitations as set forth under claim 12 above. Furthermore, Blakley teaches defining an 
authentication filter that maps authentication credentials received from mobile clients 
according to pre-established criteria (column 4, lines 50-67, column 5, lines 1-30); and 
mapping the received authentication credentials based on the pre-established criteria 
(column 4, lines 50-67, column 5, lines 1-30). 

Regarding claim 14, the combination of Blakley and Davis teaches the 
limitations as set forth under claim 13 above. Furthermore, Blakley teaches receiving 
authentication credentials from a mobile client (column 4, lines 50-67, column 5, lines 1- 
30); and sending mapped authentication credentials to the network, wherein the mobile 
client's access to the content source is determined from the mapped authentication 
credentials (column 4, lines 50-67, column 5, lines 1-30). 

Regarding claim 16, the combination of Blakley and Davis teaches the 
limitations as set forth under claim 12 above. Furthermore, Blakley teaches accessing 
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resources via the internet and mapping authentication credentials received to 
credentials used to access resources internal to a network (column 4, lines 18-67, 
column 5, lines 1-67). Blakley does not expressly disclose wherein changing at least 
one of the domain name and a username includes either adding a suffix to the 
username or replacing the domain name with another domain name. 

Regarding claim 18, the combination of Blakley and Davis teaches the 
limitations as set forth under claim 12 above. Furthermore, Blakley teaches wherein 
mobile authentication credentials and other authentication credentials share a common 
domain (column 4, lines 18-41, column 5, lines 49-67). 

Regarding claim 22, the combination of Blakley and Davis teaches the 
limitations as set forth under claim 12 above. Furthermore, Blakley teaches wherein a 
trust relationship exists between the mobile authentication credentials and other 
authentication credentials with respect to one or more access privileges (column 4, lines 
1-17). 

Regarding claims 11, 23, and 33, the combination of Blakley and Davis teaches 
the limitations as set forth under claims 9, 22, and 31 respectively above. Furthermore, 
Blakley teaches wherein the one or more access privileges included within the trust 
relationship that exists between the gateway authentication credentials and the other 
authentication credentials comprise a delegate access permission (column 4, lines 1- 
49). Furthermore, Davis teaches the use of delegation of authentication (column 11, 
lines 29-67, column 12, lines 1-14). 
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Conclusion 



5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to David G. Cervetti whose telephone number is (571) 272- 
5861 . The examiner can normally be reached on Monday-Friday 7:00 am - 5:00 pm, off 
on Wednesday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R. Sheikh can be reached on (571) 272-3795. The fax phone number 
for the organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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